If you're counting on wayland to sandbox arbitrary code execution, you're gettin... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

rvp-x on Dec 13, 2018 | parent | context | favorite | on: 50 CVEs in 50 Days: Fuzzing Adobe Reader

If you're counting on wayland to sandbox arbitrary code execution, you're getting in trouble.

Spivak on Dec 13, 2018 | [–]

Applications that can send commands to X.org servers can completely control it. The same isn't true for Wayland.

Flatpak is providing the actual application sandboxing, but being allowed to talk to the X server is a huge amount of privilege that can't really be restricted.

danielhlockard on Dec 13, 2018 | [–]

I think they're counting on flatpak.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact